VDA-Labs / websocket-harness
Use normal web pentest tools to hack Websockets
☆18Updated 5 years ago
Alternatives and similar repositories for websocket-harness:
Users that are interested in websocket-harness are comparing it to the libraries listed below
- A list of "secrets" from JWT sample code and readme files.☆54Updated 4 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆54Updated 4 years ago
- ☆48Updated 3 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- Custom scripts for the PIPER Burp extensions.☆97Updated last year
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- learning case to prepare OSWE☆37Updated 5 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆29Updated 5 years ago
- Burp extension for quickly copying request/response data.☆29Updated 4 months ago
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- Vulnerable webapp testbed☆20Updated 8 years ago
- Another Subdomain ENumeration Tool☆11Updated 2 years ago
- ☆21Updated 7 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆57Updated 5 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆71Updated 4 years ago
- Go fish for AWS EIPs☆46Updated 3 years ago
- ☆14Updated 4 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS��…☆39Updated 3 years ago
- Find orphaned IP's on cloud services☆29Updated 5 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆27Updated last year
- a shared short domain for XSS and other hacks☆31Updated 2 years ago
- Security checks for http headers and cookies☆24Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆42Updated 4 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆43Updated last year
- ☆76Updated 4 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago